If the BlackBerry Presence service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured with the whitelisting control to limit presence subscriptions to only single domain/tenant.

An XCCDF Rule

Description

<VulnDiscussion>Whitelisting in Presence subscriptions is used to control which internal and federated environments can be subscribed to. Presence subscriptions should be limited to only DOD environments to control who has access to presence information on DOD users. This is an operational security (OPSEC) issue.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-254731r879887_rule
Severity: Low
References: CCI-000366
Updated: about 1 year ago

Configure Domain Whitelisting for the Presence service.

1. Under the BlackBerry Service Configuration select "Presence".
2. Select "Settings".
3. Confirm "Enable domain whitelisting" has been checked.
4. Click the plus sign and add the domain to whitelist.

If the BlackBerry Presence service is installed on the BlackBerry Enterprise Mobility Server (BEMS), it must be configured with the whitelisting control to limit presence subscriptions to only single domain/tenant.

Description

Remediation - Manual Procedure